Etsi stylesheet (V 0)
Yüklə 1,91 Mb.
|
- Bu səhifədəki naviqasiya:
- 7.2.3.2 Security in AMF change between AMF sets
- 7.2.3.3 Security in AMF change within an AMF set
- 7.2.3.4 Resolving Editor’s Notes in Section 8.3 (Access Stratum)
- 7.2.3.7 Editorials 7.2.4 AS security 7.2.4.1 User plane open issues
- 7.2.4.2 User plane security
7.2.3 Mobility7.2.3.1 Key derivations during handoversS3-180104 Flexible retaining AS keys solution Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon, CMCC Discussion: Nokia didn’t agree with these changes. The first paragraph was new to them. Ericsson opposed to this as well, so it was finally noted.
This was taken offline as Ericsson had some issues with the changes. Decision: The document was revised to S3-180433. S3-180433 Intra-gNB retaining AS keys exception Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon, CMCC (Replaces S3-180105) Decision: The document was approved. 7.2.3.2 Security in AMF change between AMF setsS3-180328 Clause 6.9 (policy dependent horizontal K_AMF derivation) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was approved. S3-180320 Clause 6.9.2.3 (horizontal K_AMF derivation at N2-Handover) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson, Huawei, Hisilicon Decision: The document was approved. S3-180230 KAMF Derivation when AMF set changes during idle mode mobility Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei; Hisilicon Decision: The document was merged. S3-180321 Clause 6.9.3 (horizontal K_AMF derivation at mobility registration update) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was revised to S3-180434. S3-180434 Clause 6.9.3 (horizontal K_AMF derivation at mobility registration update) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson,Huawei (Replaces S3-180321) Decision: The document was approved. S3-180330 Clause 6.9 and new Annex (input parameter for horizontal K_AMF derivation) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was merged. 7.2.3.3 Security in AMF change within an AMF setS3-180125 Clarification on security in AMF change within an AMF set Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Decision: The document was noted. 7.2.3.4 Resolving Editor’s Notes in Section 8.3 (Access Stratum)7.2.3.5 Parameter/Message Name alignment7.2.3.6 MiscellaneousS3-180139 Procedures for security context transfer in idle mode mobility Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Discussion: Nokia: this needs a terminology cleanup. Decision: The document was revised to S3-180435. S3-180435 Procedures for security context transfer in idle mode mobility Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon (Replaces S3-180139) Discussion: Adding an editor's note. Decision: The document was approved. S3-180014 Remaining restructuring of Clause 6.9 (Security handling in mobility) Type: pCR For: (not specified) 33.501 v0.6.0 Source: Ericsson, NEC Corporation Decision: The document was approved. 7.2.3.7 Editorials7.2.4 AS security7.2.4.1 User plane open issuesS3-180287 Clause 6 (user plane security – non-activation of integrity protection) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was approved. S3-180288 Annex D.1 (user plane security – null-integrity not allowed for DRBs) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was approved. S3-180056 Proposal for UP integrity protection activation Type: pCR For: Approval 33.501 v0.6.0 Source: CATT Decision: The document was noted. S3-180175 UP policy Type: pCR For: Approval 33.501 v0.7.0 Source: Huawei, Hisilicon, Discussion: Discussed with 286. Ericsson: some aspects are still ongoing work in SA2 and they can be fixed later. Merged with 286. Decision: The document was revised to S3-180423. S3-180423 UP policy Type: pCR For: Approval 33.501 v0.7.0 Source: Huawei, Hisilicon,Ericsson (Replaces S3-180175) Decision: The document was approved. S3-180256 User plane integrity protection granularity Type: pCR For: Approval 33.501 v0.6.0 Source: Qualcomm Incorporated Discussion: Noted as it was similar to 286. Decision: The document was noted. S3-180286 Clause 6 (user plane security – security policy) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Discussion: Qualcomm preferred this contribution to 175 since it was more detailed. It was decided to merge both contributions.
Huawei didn't agree with this proposal. Integrity protection will be dropped as well in any congestion situation. Ericsson: we don’t mention congestion. Huawei: The RAN will never overrule the security policy coming from the core network. The RAN knows how to deal with the resources in case of congestion. Qualcomm: The core network will tell when to disable the integrity protection. Huawei: what happens when the RAN cannot fulfil the integrity protection during a congestion? Huawei: RAN complies with the user plane policy security and will handle the congestion by itself. No need for negotiation, it will never override the CN policy. Ericsson: agreements don't mention congestion. The discussion was taken offline and the agreements recorded in 424.
(Replaces S3-180289) Decision: The document was approved. 7.2.4.2 User plane securityS3-180099 Security Algorithms Negotiation for Initial AS security context Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei; HiSilicon;China Mobile Discussion: Discussed with 271. Decision: The document was merged. S3-180271 Clause 6.7.3.0 (user plane and RRC security - initial AS security context establishment) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was revised to S3-180425. S3-180425 Clause 6.7.3.0 (user plane and RRC security - initial AS security context establishment) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson,Huawei,HiSilicon,China Mobile (Replaces S3-180271) Decision: The document was approved. S3-180100 AS Security Negotiation and Activation Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei; HiSilicon Discussion: Nokia: Don’t specify what is ciphered. Huawei agreed to remove this part. Decision: The document was revised to S3-180426. S3-180426 AS Security Negotiation and Activation Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei; HiSilicon,Ericsson (Replaces S3-180100) Discussion: KPN commented that the SMC AS procedure leads to newly agreed keys and will bring a contribution for the next meeting clarifying this aspect. Decision: The document was approved. S3-180270 Clause 6.7.4 (user plane and RRC security - AS SMC procedure) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was merged. S3-180285 Clause 6.6.3 (user plane – security activation) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was merged. 7.2.4.3 RRC securityS3-180020 Security aspects of RESUME REJECT in INACTIVE state in NR Type: discussion For: Discussion Source: ZTE Corporation (Replaces S3-173072) Abstract: moved from AI 7.2.15 to AI 7.2.4 (related to S3-173389) This paper discusses the issue of rejecting a resume request, and proposes ways forward.
Nokia considered that there was a more simple way of doing this. Ericsson: this brings additional overhead and signalling. We have an alternative in 342.
Ericsson: check with RAN2 the signalling of the figure. We cannot require additional signalling for a situation that is not critical. Intel: keep the solution simple.RAN doesn’t want to add integrity check to reduce the additional load in the network. Huawei: we have to tell RAN that there is a security issue and propose a solution. They will decide if there is too much signalling or not. Nokia: don't load the gNodeB with more signalling.
Ericsson: this doesn’t solve the problem. Intel: proposal 2 is an option, we recommend proposal one. Ericsson didn’t see any viable solution to be sent to RAN2. There are threats and we are aware of them, we can reply with this. Intel: RAN2 is not asking for a solution, it's just asking if there is any concern from SA3. It was decided to go for the reply LS in 349 and note the related documents here. Decision: The document was noted. S3-180193 draft Reply LS on security during Resume reject in INACTIVE state in NR Type: LS out For: Approval to RAN2, cc RAN3 Source: Intel Decision: The document was noted. S3-180342 Draft reply LS to R2-1712052 = S3-173023 on security during Resume reject in INACTIVE state in NR (to: RAN2; cc: -; contact: Ericsson) Type: LS out For: Approval to RAN2 Source: Ericsson (Replaces S3-173389) Decision: The document was noted. S3-180149 pCR to TS 33.501 Key Handing at Transitions between RRC-INACTIVE to RRC-CONNECTED states Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Decision: The document was noted. S3-180272 Clause 6.8.2.1 (key handling – RRC INACTIVE/CONNECTED state transition) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was noted. S3-180150 pCR to TS 33.501 Key Handing during mobility in RRC-INACTIVE state Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Decision: The document was noted. S3-180273 Clause 6.8.2.2 (key handling – RRC INACTIVE mobility) Type: pCR For: Approval 33.501 v0.6.0 Source: Ericsson Decision: The document was noted. S3-180129 pCR to TS 33.501 Security Handling for RRC Connection Re-establishment Procedure Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Discussion: Ericsson: postpone this since it's a new feature, different from LTE and may be better to present it in RAN. Nokia agreed. This topic was postponed and it will be brought back in the next meetings after offline discussion.
(Replaces S3-180297) Decision: The document was approved. 7.2.4.4 MiscellaneousS3-180103 Adding Forward & Backward Security definition Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Discussion: Ericsson had a proposal to generalize these definitions, instead of a KgNB. MCC commented that requirements were not allowed in definitions so the shall had to go.
(Replaces S3-180103) Decision: The document was approved. S3-180106 Address EN in requirements for gNB setup and configuration Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon, Decision: The document was approved. S3-180107 Requirements for UP and CP for the gNB Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon, CMCC Decision: The document was revised to S3-180456. S3-180456 Requirements for UP and CP for the gNB Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon, CMCC (Replaces S3-180107) Decision: The document was approved. S3-180135 pCR to TS 33.501 key identification Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Decision: The document was revised to S3-180430. S3-180430 pCR to TS 33.501 key identification Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon,ZTE, CATT,Nokia,Ericsson (Replaces S3-180135) Decision: The document was approved. S3-180136 pCR to TS 33.501 key lifetimes Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Decision: The document was merged. S3-180145 Delete the mandatory implementation of NIA0 in gNB Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Decision: The document was revised to S3-180431. S3-180431 Delete the mandatory implementation of NIA0 in gNB Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon (Replaces S3-180145) Decision: The document was approved. S3-180151 pCR to TS 33.501 AS algorithm selection in state transitions between RRC-INACTIVE to RRC-CONNECTED states Type: pCR For: Approval 33.501 v0.6.0 Source: Huawei, Hisilicon Decision: The document was noted. S3-180181 Replay protection for UP, RRC and NAS Type: pCR For: Approval 33.501 v0.7.0 Source: Huawei, Hisilicon, Discussion: Nokia: Replay protection is built-in in the protocol, no need to add this. China Mobile: replay protection is a different requirement so we agree with Huawei.
No one saw an issue in the key derivation in the AUSF. The document was noted. Decision: The document was noted. S3-180248 Adding requirements on CU-DU split based on the key derivation used Type: pCR For: Approval 33.501 v0.6.0 Source: Qualcomm Incorporated Discussion: Ericsson didn’t agree with the requirement. This was taken offline.
7.2.4.5 EditorialsS3-180007 Corrections to clause 5.2 Requirements on the gNB Type: pCR For: Approval 33.501 v0.6.0 Source: NEC Telecom MODUS Ltd. Abstract: This pCR removes text pertaining to NAS signalling from clause 5.2 Requirements on the gNB. Decision: The document was merged. S3-180182 Integrity for UP, RRC and NAS Type: pCR For: Approval 33.501 v0.7.0 Source: Huawei, Hisilicon, Decision: The document was merged. S3-180183 Confidentiality for UP, RRC and NAS Type: pCR For: Approval 33.501 v0.7.0 Source: Huawei, Hisilicon, Decision: The document was merged. Yüklə 1,91 Mb. Dostları ilə paylaş:
|